CN103957152B - IPv4 and IPv6 network communication method and NAT-PT gateway - Google Patents

IPv4 and IPv6 network communication method and NAT-PT gateway Download PDF

Info

Publication number
CN103957152B
CN103957152B CN201410165306.2A CN201410165306A CN103957152B CN 103957152 B CN103957152 B CN 103957152B CN 201410165306 A CN201410165306 A CN 201410165306A CN 103957152 B CN103957152 B CN 103957152B
Authority
CN
China
Prior art keywords
node
authentication
nat
gateways
ipv4
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201410165306.2A
Other languages
Chinese (zh)
Other versions
CN103957152A (en
Inventor
杨峰
陈康先
张会锋
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
GCI Science and Technology Co Ltd
Original Assignee
GCI Science and Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by GCI Science and Technology Co Ltd filed Critical GCI Science and Technology Co Ltd
Priority to CN201410165306.2A priority Critical patent/CN103957152B/en
Publication of CN103957152A publication Critical patent/CN103957152A/en
Application granted granted Critical
Publication of CN103957152B publication Critical patent/CN103957152B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Data Exchanges In Wide-Area Networks (AREA)

Abstract

The invention provides an IPv4 and IPv6 network communication method based on an NAT-PT gateway and the NAT-PT gateway. The IPv4 and IPv6 network communication method comprises the steps that a communication request sent by an IPv4 node or an IPv6 node is received; according to the communication request, whether the identity authentication information of the node and the identity authentication information of a target node are recorded or not is detected; if yes, the node and the target node are legal nodes, and the communication request is forwarded to the target node; otherwise, the node and/or the target node are/is notified to conduct identification authentication. According to the IPv4 and IPv6 network communication method and the NAT-PT gateway, whether identification authentication needs to be conducted on the source node and the target node is judged according to the communication request sent by the node, the problem that data can not be filtered by a network firewall in IPv4 and IPv6 network safety is solved, identity authentication is conducted on two communication parties, and therefore the safety of communication data is effectively guaranteed.

Description

IPv4 and IPv6 network communication methods and NAT-PT gateways
Technical field
The present invention relates to internet device technical field, more particularly to a kind of IPv4 and IPv6 based on NAT-PT gateways Network communication method, for the NAT-PT gateways of IPv4 and IPv6 network services.
Background technology
The most popular technology of system safety product is exactly firewall technology in network security, i.e., in Internet (Internetwork, Internet) sets a fire wall and internal network between.It is connected into Internet's in the whole world at present It is under firewall protection that 1/3rd are there are about in computer.
The technology of fire wall is realized being normally based on so-called " packet filtering " technology, and the standard for carrying out packet filtering is generally exactly Formulated according to security strategy.In firewall product, the Standard General of packet filtering is in firewall box by network manager Access control inventory in set.The standard that access control is generally basede on has:The source address of bag;The destination address of bag;Connection please The direction (be connected into or connect) asked;Data pack protocol, such as TCP/IP (Transmission Control Protocol/ Internet Protocol, transmission control protocol/Internet Protocol) etc.;The type of service request, such as ftp (File Transfer Protocol, file transfer protocol (FTP)), www (WWW) etc..
At present, with IPv4 (Internet protocol fourth edition) technology it is leading in data network, with the expansion of network size, IPv6 (Internet protocol sixth version) technologies will gradually replace current IPv4 technologies with advantages such as its huge address spaces.So And, it is this thoroughly to replace the long-term process of needs.At this for a long time from IPv4 to during IPv6 evolution, in order to share net Network resource, needs to solve the problems, such as IPv4 networks and IPv6 networks intercommunication and communication security.
To ensure IPv4 networks and IPv6 network energy intercommunication, needs carry out protocol conversion at Interworking gateway, need IP headings are modified, even needs to change application-dependent data sometimes.So IP of the data that network firewall is received Address is modified, destroys integrity checking, it is impossible to reach the effect of data filtering, so as to also cannot just ensure IPv4 networks With the safety of IPv6 network communication datas.
The content of the invention
Based on this, it is necessary to for the problems referred to above, there is provided a kind of IPv4 of guarantee communication data safety leads to IPv6 networks Letter method, for the NAT-PT gateways of IPv4 and IPv6 network services.
A kind of IPv4 based on NAT-PT gateways and IPv6 network communication methods, including step:
The communication request that IPv4 or IPv6 nodes send is received, wherein the communication request includes the IP address of the node And/or domain name, the domain name of destination node;
According to the authentication information that the communication request detects whether to record the node and the destination node, if It is, and the node and the destination node are legitimate node, then forward the communication request to the destination node, are otherwise led to Know that the node and/or the destination node carry out authentication, wherein the authentication information is whether node is legal Node.
IPv4 and IPv6 network communication method of the present invention based on NAT-PT gateways, according to the communication request inspection that node sends The authentication information whether NAT-PT gateways store active node and destination node is surveyed, so as to judge whether to need to the source Node and destination node carry out authentication, and solving cannot be right by network firewall in current IPv4 and IPv6 network securitys The defect that data are filtered, by the certification to communicating pair identity, the effective guarantee safety of communication data.
A kind of NAT-PT gateways for IPv4 and IPv6 network services, including:
Communication request receiver module, for receiving the communication request of IPv4 or IPv6 nodes transmission, wherein the communication please Seek IP address and/or domain name, the domain name of destination node including the node;
Authentication information memory module, for the authentication information of memory node, wherein the authentication information is section Whether point is legitimate node;
Authentication information detection module, for detecting whether the authentication information memory module stores according to the communication request If so, and the node and the destination node are legal section there is the authentication information of the node and the destination node, Point, then forward the communication request to the destination node, otherwise notifies that the node and/or the destination node carry out identity Certification.
The present invention is used for the NAT-PT gateways of IPv4 and IPv6 network services, by detecting whether the communication request pair that is stored with The node answered and the authentication information of the destination node, so as to judge for the communication request to be transmitted to the mesh Mark node, or first authentication is carried out to the node and/or the destination node, effectively ensure that the body of communicating pair Part, ensure the safety of communication data.
Description of the drawings
Fig. 1 is the schematic flow sheet of the inventive method embodiment;
Fig. 2 is the schematic flow sheet of node of the present invention or destination node authentication embodiment;
Fig. 3 is that node of the present invention communicates the structure chart of specific embodiment with destination node;
Fig. 4 is the structural representation of NAT-PT gateway embodiments one of the present invention;
Fig. 5 is the structural representation of NAT-PT gateway embodiments two of the present invention.
Specific embodiment
The present invention is embodied as based on the IPv4 and IPv6 network communication method of NAT-PT gateways below in conjunction with the accompanying drawings Mode is described in detail.
As shown in figure 1, a kind of IPv4 based on NAT-PT gateways and IPv6 network communication methods, including step:
S100, the communication request for receiving the transmission of IPv4 or IPv6 nodes, wherein the communication request includes the node IP (Internet Protocol, procotol) addresses and/or domain name, the domain name of destination node;
NAT-PT (Network Address Translation-Protocol, the network address of subsidiary protocol converter Transducer) gateway is responsible for completing IPv4 and IPv6 including the conversion work including address, agreement, with IPv4 address pools, from IPv6 is used when giving out a contract for a project to IPv4 transfers, the address in address pool be for changing IPv6 messages in source address, support DNS- ALG (Domain Name System-Application Layer Gateway, domain name system-ALG), realize by IPv4 nodes initiate with the communication between IPv6 nodes;
S200, the authentication letter for detecting whether to record the node and the destination node according to the communication request Breath, if so, and the node and the destination node are legitimate node, then into step S300, otherwise into step S400;Its Described in authentication information be whether node is legitimate node;
IP address or domain name, the domain name of destination node according to the node of communication request detects the NAT-PT gateways Whether be stored with corresponding authentication information;Condition into step S400 is that the authentication that only record has the node is believed Breath, or only record has the authentication information of the destination node, or the identity of the node and the destination node is recognized Card information is not recorded;
S300, the forwarding communication request are to the destination node;Forward the communication request to the destination node and The destination node can be realized according to the response that the communication request is returned according to scheme known in the state of the art;
S400, notify that the node and/or the destination node carry out authentication;Not through the node of authentication And/or destination node sends ID authentication request and is authenticated by the NAT-PT gateways to certificate server.
The node and destination node authentication can be realized by many modes, for example, in one embodiment, such as Shown in Fig. 2, can include the step of the node or the destination node authentication:
S410, the ID authentication request for receiving the node or destination node transmission, wherein the authentication please Ask the identity comprising the node or the destination node;
Need the node or destination node that carry out authentication that ID authentication request is sent to into NAT-PT gateways;The body Part mark includes the digital certificate of the node or the destination node, and/or MAC (Media Access Control, medium Access control) address etc.;
S420, the identity of NAT-PT gateways is transmitted to into certificate server with the ID authentication request;
The digital certificate of the identity of NAT-PT gateways including the NAT-PT gateways, and/or MAC Address etc.;NAT- PT gateways can complete the conversion of its own agreement according to the agreement of node or destination node, and for example, the node is IPv4 nets Network node, the destination node is IPv6 network nodes, then will during the ID authentication request of node described in NAT-PT gateway forwards The identity of its own is converted into the form of IPv4 agreements, when forwarding the ID authentication request of the destination node by itself Identity is converted into the form of IPv6 agreements, and the wherein protocol translation of NAT-PT gateways can be achieved by the prior art;
S430, receive the authentication result that the certificate server sends, wherein the authentication result comprising the node or The authentication information of the destination node, and the authentication information of the NAT-PT gateways;
The authentication information of the NAT-PT gateways is whether gateway is legal gateway;
S440, the authentication information for recording the node or destination node simultaneously forward the authentication result to the node Or destination node.
After the completion of the node or the destination node authentication, in order that communication two ends communicate in time, in a reality In applying example, after step S440, step can also be included:The node or destination node record the identity of the NAT-PT gateways Authentication information, and authentication end is returned to the NAT-PT gateways;The NAT-PT gateways receive the identity to be recognized Card end, and notify that the node resends the communication request.
Authentication due to being related to two heterogeneous networks (IPv4 and IPv6) node, the certificate server needs to support Two kinds of agreements of IPv4 and IPv6, i.e. dual stack, can simultaneously certification heterogeneous networks node, wherein supporting recognizing for dual stack Card server can be realized by method well known in the prior art.
In order to be better understood from the specific embodiment of IPv4 of the present invention and IPv6 network communication methods, with reference to one Specific embodiment is described in detail.
As shown in figure 3, the node 10 in IPv4 networks will communicate with the node 60 in IPv6 networks, node 10 needs The IP address of the inquiry of the domain name of node 60 to node 60, this process is used to need to be completed by dns server first.
For convenience of description, it is assumed that IPv4 networks and IPv6 networks only have a dns server, are respectively dns servers 20 and dns server 50, while the domain name for assuming node B is www.abc.com, the address of its IPv6 is 2001::1.
Node 10 wants the IP address of query node 60, sends DNS query request, the inquiry to dns server 20 first Request bag contains the information such as the domain name of IP address, domain name and node 60 of node 10, and dns server 20 is found without above-mentioned domain Name record, then inquires about to dns server 50;
When the inquiry request reaches NAT-PT gateways 30, the NAT-PT gateways 30 detect whether respectively the section that is stored with The authentication information of point 10 and node 60, finds the node 10 and node 60 not through authentication, then described NAT-PT gateways 30 send ID authentication request and notify to node 10 and node 60 respectively;
The node 10 receives the ID authentication request and notifies, sends ID authentication request to the NAT-PT gateways 30, wherein the ID authentication request includes digital certificate or MAC Address of the node 10 etc.;
The ID authentication request and the identity of oneself that the NAT-PT gateways 30 send the node 10 for receiving turns Certificate server 40 is issued, wherein the certificate server 40 supports dual stack;
The information of the forwarding of NAT-PT gateways 30 of the certificate server 40 pairs is authenticated, and authentication result is returned To the NAT-PT gateways 30, wherein authentication result includes the authentication information of node 10 and the body of the NAT-PT gateways 30 Part authentication information;
The NAT-PT gateways 30 receive the authentication result, and whether record node 10 is legitimate node, and forwarding is recognized Card result is to node 10;
Whether the identity that node 10 records the NAT-PT gateways 30 is legal, and returns an authentication end extremely The NAT-PT gateways 30;
Meanwhile, the node 60 receives the ID authentication request and notifies, sends ID authentication request to the NAT- PT gateways 30, wherein the ID authentication request includes digital certificate or MAC Address of the node 60 etc.;
The ID authentication request and the identity of oneself that the NAT-PT gateways 30 send the node 60 for receiving turns Certificate server 40 is issued, wherein the certificate server 40 supports dual stack;
The information of the forwarding of NAT-PT gateways 30 of the certificate server 40 pairs is authenticated, and authentication result is returned To the NAT-PT gateways 30, wherein authentication result includes the authentication information of node 60 and the body of the NAT-PT gateways 30 Part authentication information;
The NAT-PT gateways 30 receive the authentication result, and whether record node 60 is legitimate node, and forwarding is recognized Card result is to node 60;
Whether the identity that node 60 records the NAT-PT gateways 30 is legal, and returns an authentication end extremely The NAT-PT gateways 30;
The NAT-PT gateways 30 receive the authentication end that node 10 and node 60 are returned, and notify node 10 The inquiry request is resend to the NAT-PT gateways 30;
The NAT-PT gateways 30 detect the authentication information for recording node 10 and node 60, and the He of node 10 Node 60 is legitimate node, the IPv6 networks for just forwarding the inquiry request to be located to node 60;
Dns server 50 inquires the corresponding IP address of the domain name of node 60 for 2001::1, sending to dns server 20 should Answer message;
When the NAT-PT gateways 30, the NAT-PT gateways 30 are from the address pool that it is safeguarded for the response message An available IPv4 address (being assumed to be 202.116.78.10) is found as the IPv4 addresses of node 60, and creates corresponding Map record;
Amended response message return node 10, node 10 just can be communicated by 202.116.78.10 with node 60.
Similar, if node 60 wants the IP address of query node 10, response message to be back to the NAT-PT gateways 30 When, the NAT-PT gateways 30 can add the NAT-PT gateway prefix of 96 as node 10 before the IPv4 addresses of node 10 IPv6 addresses, so as to node 60 just can be communicated by the IPv6 addresses of the node 10 with node 10.
Based on same inventive concept, the present invention also provides a kind of for IPv4 and the NAT-PT gateways of IPv6 network services, The specific embodiment of gateway of the present invention is described in detail below in conjunction with the accompanying drawings.
As shown in figure 4, a kind of NAT-PT gateways for IPv4 and IPv6 network services, including:
Communication request receiver module 110, for receiving the communication request of IPv4 or IPv6 nodes transmission, wherein the communication Request includes IP address and/or domain name, the domain name of destination node of the node;
Authentication information memory module 120, for the authentication information of memory node, wherein the authentication information is Whether node is legitimate node;
Authentication information detection module 130, for detecting that the authentication information memory module 120 is according to the communication request The authentication information of no the be stored with node and the destination node, if so, and the node and destination node are legal Node, then forward the communication request to the destination node, otherwise notifies that the node and/or the destination node carry out body Part certification.
The authentication of the node and destination node can be realized by many modes, for example, in one embodiment, As shown in figure 5, the NAT-PT gateways can also include:
Certification request receiver module 140, for receiving the ID authentication request that the node or destination node send, wherein Identity of the ID authentication request comprising the node or destination node;
Certification request forwarding module 150, for the identity of NAT-PT gateways to be forwarded with the ID authentication request To certificate server 200;
Authentication result receiver module 160, for receiving the authentication result of the transmission of the certificate server 200, wherein described Authentication information of the authentication result comprising the node or the destination node, and the authentication of the NAT-PT gateways Information;
Authentication result forwarding module 170, it is described for the authentication information of the node or destination node to be stored in Authentication information memory module 120, and the authentication result is forwarded to the node or destination node.
After the completion of the node or the destination node authentication, in order that communication two ends communicate in time, in a reality In applying example, the NAT-PT gateways can also include certification message reception module, in the node or the destination node After recording the authentication information of the NAT-PT gateways, the authentication knot that the node or the destination node are returned is received Beam message;The message notification module being connected with the certification message reception module, for terminating receiving the authentication During message, notify that the node resends the communication request.
Authentication due to being related to two heterogeneous networks (IPv4 and IPv6) node, the certificate server needs to support Two kinds of agreements of IPv4 and IPv6, i.e. dual stack, can simultaneously certification heterogeneous networks node, wherein supporting recognizing for dual stack Card server can be realized by method well known in the prior art.
The present invention is used for other technical characteristics and the inventive method phase of the NAT-PT gateways of IPv4 and IPv6 network services Together, will not be described here.
Embodiment described above only expresses the several embodiments of the present invention, and its description is more concrete and detailed, but and Therefore the restriction to the scope of the claims of the present invention can not be interpreted as.It should be pointed out that for one of ordinary skill in the art For, without departing from the inventive concept of the premise, some deformations and improvement can also be made, these belong to the guarantor of the present invention Shield scope.Therefore, the protection domain of patent of the present invention should be defined by claims.

Claims (6)

1. a kind of IPv4 based on NAT-PT gateways and IPv6 network communication methods, it is characterised in that including step:
Receive the communication request that IPv4 or IPv6 nodes send, wherein the communication request include the IP address of the node and/ Or domain name, the domain name of destination node;
According to the authentication information that the communication request detects whether to record the node and the destination node, if so, And the node and the destination node are legitimate node, then forward the communication request to the destination node, are otherwise notified The node and/or the destination node carry out authentication, wherein the authentication information is whether node is legal section Point;
The ID authentication request that the node or the destination node send is received, wherein the ID authentication request is comprising described The identity of node or the destination node;
The identity of NAT-PT gateways is transmitted to into certificate server with the ID authentication request;
The authentication result that the certificate server sends is obtained, wherein the authentication result includes the node or the target section The authentication information of point, and the authentication information of the NAT-PT gateways;
Record the authentication information of the node or the destination node and forward the authentication result to the node or institute State destination node.
2. the IPv4 based on NAT-PT gateways according to claim 1 and IPv6 network communication methods, it is characterised in that turn Send out authentication result described to the node or the destination node step, also including step:
The node or destination node record the authentication information of the NAT-PT gateways, and return authentication end To the NAT-PT gateways;
The NAT-PT gateways receive the authentication end, and notify that the node resends the communication and asks Ask.
3. IPv4 according to claim 1 and 2 and IPv6 network communication methods, it is characterised in that the certificate server Support two kinds of agreements of IPv4 and IPv6.
4. a kind of NAT-PT gateways for IPv4 and IPv6 network services, it is characterised in that include:
Communication request receiver module, for receiving the communication request of IPv4 or IPv6 nodes transmission, wherein the communication request bag Include IP address and/or domain name, the domain name of destination node of the node;
Authentication information memory module, for the authentication information of memory node, wherein the authentication information is node being It is no for legitimate node;
Authentication information detection module, for detecting whether the authentication information memory module stores according to the communication request The authentication information of node and the destination node is stated, if so, and the node and the destination node are legitimate node, then The communication request is forwarded to the destination node, otherwise notifies that the node and/or the destination node carry out authentication;
Certification request receiver module, for receiving the ID authentication request that the node or destination node send, wherein the body Identity of part certification request comprising the node or the destination node;
Certification request forwarding module, for the identity of NAT-PT gateways and the ID authentication request to be transmitted to into certification clothes Business device;
Authentication result receiver module, for receiving the authentication result that the certificate server sends, wherein the authentication result bag Authentication information containing the node or the destination node, and the authentication information of the NAT-PT gateways;
Authentication result forwarding module, for the authentication information of the node or the destination node to be stored in into the certification Information storage module, and the authentication result is forwarded to the node or the destination node.
5. NAT-PT gateways for IPv4 and IPv6 network services according to claim 4, it is characterised in that also wrap Include:
Certification message reception module, for recording the authentication of the NAT-PT gateways in the node or the destination node After information, the authentication end that the node or the destination node are returned is received;
The message notification module being connected with the certification message reception module, for receiving the authentication end When, notify that the node resends the communication request.
6. NAT-PT gateways for IPv4 and IPv6 network services according to claim 4 or 5, it is characterised in that institute State certificate server and support two kinds of agreements of IPv4 and IPv6.
CN201410165306.2A 2014-04-22 2014-04-22 IPv4 and IPv6 network communication method and NAT-PT gateway Active CN103957152B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410165306.2A CN103957152B (en) 2014-04-22 2014-04-22 IPv4 and IPv6 network communication method and NAT-PT gateway

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410165306.2A CN103957152B (en) 2014-04-22 2014-04-22 IPv4 and IPv6 network communication method and NAT-PT gateway

Publications (2)

Publication Number Publication Date
CN103957152A CN103957152A (en) 2014-07-30
CN103957152B true CN103957152B (en) 2017-04-19

Family

ID=51334380

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410165306.2A Active CN103957152B (en) 2014-04-22 2014-04-22 IPv4 and IPv6 network communication method and NAT-PT gateway

Country Status (1)

Country Link
CN (1) CN103957152B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110784562B (en) * 2019-10-25 2021-10-01 新华三信息安全技术有限公司 Message forwarding method, domain name address query method, device, equipment and medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5987430A (en) * 1997-08-28 1999-11-16 Atcom, Inc. Communications network connection system and method
CN1585376A (en) * 2003-08-20 2005-02-23 华为技术有限公司 Addressing converting method and mixed addressing converting router for realizing it
CN101471878A (en) * 2007-12-28 2009-07-01 华为技术有限公司 Safety routing method, network system and equipment for peer-to-peer session initiation protocol network
CN103024096A (en) * 2012-12-13 2013-04-03 北京邮电大学 Method quickly accessing internet in carrier-grade network address translation (CGN) network
JP2014507855A (en) * 2011-01-14 2014-03-27 ノキア シーメンス ネットワークス オサケユキチュア Support for external authentication over untrusted networks

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7154997B1 (en) * 1999-12-28 2006-12-26 Cingular Wireless Ii, Llc Subscription-based billing methods and systems for shared network modem pools
GB2423448B (en) * 2005-02-18 2007-01-10 Ericsson Telefon Ab L M Host identity protocol method and apparatus
CN101330438B (en) * 2007-06-21 2011-06-08 华为技术有限公司 Safe communication method and system between nodes
CN102025777A (en) * 2010-11-24 2011-04-20 华中科技大学 Method for sharing peer-to-peer (P2P) resources under condition of internet protocol version 4/version 6 (IPv4/v6) hybrid networking
CN102065423B (en) * 2010-12-13 2013-07-10 中国联合网络通信集团有限公司 Node access authentication method, access authenticated node, access node and communication system
WO2013034100A2 (en) * 2011-09-08 2013-03-14 北京智慧风云科技有限公司 Communications system and method for terminals based on different network protocols

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5987430A (en) * 1997-08-28 1999-11-16 Atcom, Inc. Communications network connection system and method
CN1585376A (en) * 2003-08-20 2005-02-23 华为技术有限公司 Addressing converting method and mixed addressing converting router for realizing it
CN101471878A (en) * 2007-12-28 2009-07-01 华为技术有限公司 Safety routing method, network system and equipment for peer-to-peer session initiation protocol network
JP2014507855A (en) * 2011-01-14 2014-03-27 ノキア シーメンス ネットワークス オサケユキチュア Support for external authentication over untrusted networks
CN103024096A (en) * 2012-12-13 2013-04-03 北京邮电大学 Method quickly accessing internet in carrier-grade network address translation (CGN) network

Also Published As

Publication number Publication date
CN103957152A (en) 2014-07-30

Similar Documents

Publication Publication Date Title
KR100953805B1 (en) Virtual private network structures reuse for mobile computing devices
US7760744B1 (en) Media path optimization for multimedia over internet protocol
US8467386B2 (en) System and apparatus for local mobility anchor discovery by service name using domain name service
US9882866B2 (en) Address allocating method, apparatus, and system
CN103108089B (en) Connection establishment management method of network system and related system thereof
US20140258496A1 (en) Data centre system and method for a data centre to provide service
JP2011515945A (en) Method and apparatus for communicating data packets between local networks
US9705844B2 (en) Address management in a connectivity platform
KR20140129229A (en) Internet protocol connectivity over a service-oriented architecture bus
US20120144483A1 (en) Method and apparatus for preventing network attack
CN112714027B (en) Method and system for accessing terminal equipment of Internet of things to gateway
US8194683B2 (en) Teredo connectivity between clients behind symmetric NATs
CN115022281B (en) NAT penetration method, client and system
US8874693B2 (en) Service access using a service address
CN103888554B (en) IPv4 and the domain name analytic method and system of IPv6 intercommunications
CN102970387A (en) Domain name resolution method, device and system
JP4941117B2 (en) Server apparatus, network system, and network connection method used therefor
Tseng et al. Can: A context-aware NAT traversal scheme
US7693091B2 (en) Teredo connectivity between clients behind symmetric NATs
CN110995763B (en) Data processing method and device, electronic equipment and computer storage medium
CN103957152B (en) IPv4 and IPv6 network communication method and NAT-PT gateway
WO2014156143A1 (en) Home gateway device and packet forwarding method
CN104518959B (en) A kind of method and device of communication between devices
WO2011044810A1 (en) Method, device and system for implementing multiparty communication
CN103516820A (en) Port forwarding method and apparatus based on MAC address

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant